CVE-2015-6834
Published: May 16, 2016Last modified: November 9, 2023
Description
Multiple use-after-free vulnerabilities in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13 allow remote attackers to execute arbitrary code via vectors related to (1) the Serializable interface, (2) the SplObjectStorage class, and (3) the SplDoublyLinkedList class, which are mishandled during unserialization.
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score | 9.8 |
| Attack Vector | NETWORK |
| Attack complexity | LOW |
| Privileges required | NONE |
| User interaction | NONE |
| Scope | UNCHANGED |
| Confidentiality | HIGH |
| Integrity impact | HIGH |
| Availability impact | HIGH |
| Vector | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Status
| Product | Release | Package | Status |
|---|---|---|---|
| Alpaquita Linux | 23 LTS | php81 | Not affected (8.1.22-r0) |
| Stream | php81 | Not affected (8.1.22-r0) |
References
- http://php.net/ChangeLog-5.php
- http://www.debian.org/security/2015/dsa-3358
- http://www.securityfocus.com/bid/76649
- http://www.securitytracker.com/id/1033548
- https://bugs.php.net/bug.php?id=70172
- https://bugs.php.net/bug.php?id=70365
- https://bugs.php.net/bug.php?id=70366
- https://security.gentoo.org/glsa/201606-10